[Git][security-tracker-team/security-tracker][master] Add CVE-2018-16981
Salvatore Bonaccorso
carnil at debian.org
Fri Sep 14 10:50:44 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c4ca8a8a by Salvatore Bonaccorso at 2018-09-14T09:50:19Z
Add CVE-2018-16981
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -146,7 +146,9 @@ CVE-2018-16983 (NoScript Classic before 5.1.8.7, as used in Tor Browser 7.x and
CVE-2018-16982 (Open Chinese Convert (OpenCC) 1.0.5 allows attackers to cause a denial ...)
NOT-FOR-US: Open Chinese Convert (OpenCC)
CVE-2018-16981 (stb stb_image.h 2.19, as used in catimg, Emscripten, and other ...)
- TODO: check
+ - catimg <undetermined>
+ NOTE: https://github.com/nothings/stb/issues/656
+ TODO: further check, stb_image.h in older version is embedded in src;catimg
CVE-2018-16980 (dotCMS V5.0.1 has XSS in the ...)
NOT-FOR-US: dotCMS
CVE-2018-16979 (Monstra CMS V3.0.4 allows HTTP header injection in the ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c4ca8a8a4947d1376bc31fe183cb8298d7777b26
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c4ca8a8a4947d1376bc31fe183cb8298d7777b26
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180914/3fd63902/attachment.html>
More information about the debian-security-tracker-commits
mailing list